Tag Archives: certificate

Publish a CRL created with Openssl into Active Directory

When you sign a CRL with Openssl you don’t have the attribute “Published CRL Locations”. It tells where the revocation lists are or should be published. Without this attribute there is no way for certutil to know where to save … Continue reading

Posted in Active Directory, PKI | Tagged , , , , , | Comments Off on Publish a CRL created with Openssl into Active Directory

Remote Desktop Services RDS – Unable to logon from Windows 7 when certificate has expired

In Remote Desktop Services it is possible to tunnel all traffic over TLS. You can choose between a default certificate or from an external CA. If you pick a certificate that is autoenrolled from another CA there are some issues. When the … Continue reading

Posted in Windows | Tagged , , , | Comments Off on Remote Desktop Services RDS – Unable to logon from Windows 7 when certificate has expired

Write a CSR to a CA with Openssl

If you order i.e a wildcart certificate you dont want to generate the keys on a webserver because you cant just export them without special tools. Instead you can use openssl to make the CSR. 1. First we create a … Continue reading

Posted in PKI | Tagged , , , , | Comments Off on Write a CSR to a CA with Openssl

Add third party CA in Active Directory to enable smart card logon

If you want to be able to use a smartcard issued by a third pary CA to logon to your Active Directory there are a few steps you have to do. You have to tell Active Directory to trust the … Continue reading

Posted in Active Directory, PKI | Tagged , , | Comments Off on Add third party CA in Active Directory to enable smart card logon

Howto delete certificates on a .Net Smartcard

Card information Certutil -scinfo Remove certificate Certutil -delkey -csp “Microsoft Base Smartcard Crypto Provider” Container GUID

Posted in PKI | Tagged , , | Comments Off on Howto delete certificates on a .Net Smartcard